# 使用官方轻量级 Python 镜像
FROM python:3.9-slim

# 创建非 root 用户
RUN useradd -m -u 1000 user
USER user
ENV PATH="/home/user/.local/bin:$PATH"

WORKDIR /app

# 先拷贝依赖文件，利用 Docker 缓存机制加速构建
COPY --chown=user ./requirements.txt requirements.txt
RUN pip install --no-cache-dir --upgrade -r requirements.txt

# 拷贝剩余代码
COPY --chown=user . /app

# 启动 Uvicorn，务必指定 0.0.0.0 和 7860
CMD ["uvicorn", "app:app", "--host", "0.0.0.0", "--port", "7860"]